Configuring the Remote Management Policy for the Registered Workstations

The Remote Management policy is an eDirectory object in a policy package. Policy packages are eDirectory objects that contain policies grouped according to the object type. Object types can be Workstation object, Workstation Group, User object, User Group, or Container object.

The Remote Management policy enables the administrator to specify security settings for various Remote Management sessions. The administrator can use the ZENworks Policy Wizard to create a policy package or use an existing Remote Management policy for an object. The policy packages are categorized into Workstation Policy Packages and User Policy Packages. The Workstation Policy Package and the User Policy Package are further categorized based on the operating system of the workstation or the operating system that the user is logged in to. Each policy package has a set of default policies that you can use. By default, the Remote Management policy is available from all the listed User and Workstation policy packages provided by Desktop Management, including:

The default values are provided for parameters in each page of the Remote Management policy. You can change the default values to suit your requirements.

To change the default values:

  1. In Novell ConsoleOne®, create a Workstation policy package.

    For more information about how to create the policy packages, see the Novell ZENworks 6.5 Desktop Management Installation Guide.

  2. Right-click the Workstation policy package, click Properties and select the Policies tab.

  3. Select the check box under the Enabled column for the Remote Control Policy.

  4. Click the Properties button > Remote Management.

  5. Click the remote session tab for which you want to change settings, then select the options that you want to use.

    The following table provides a description of options available in the Remote Management policy:

    Tab Options Description

    General

    Enable Diagnostics

    Allows the remote operator to diagnose the managed workstation.

     

    Enable Password-Based Remote Management

    Allows the remote operator to establish Remote Management session with the managed workstation using password mode of authentication after the workstation was imported.

     

    Enable Session Encryption

    If this option is enabled, the Remote Control and Remote View sessions will be encrypted. The Remote Operator will not be able to change this to an unencrypted mode. When the option is disabled, the remote sessions will be unencrypted by default. In this case, the Remote Operator will have an option to switch over to the encrypted mode from the Console. An encrypted session will slightly impact the performance of remote sessions over fast links.

    IMPORTANT:  This option will not work with Novell ZENworks for Desktops 4.x and older versions of Agent.

     

    Allow User to Request Remote Session

    If this option is enabled, the user at the managed workstation can request the Remote Operator on the management console to perform a remote session.

    IMPORTANT:  This option will not work for ZENworks for Desktops 4.x and older versions of the agent.

     

    Terminate Session When Workstation User Logs In Requires To Be Prompted for Permission

    Terminates any ongoing Remote Management session when a new eDirectory user, whose permission for initiating any Remote Management operation is required, logs into the managed workstation.

     

    Accept Connections across NAT/Proxy

    Enables the Remote Management Agent to accept connection with the management console across NAT or Proxy. This is applicable for connections initiated through the Directory-based authentication only.

     

    Prompt User for Permission to Accept Connections across NAT/Proxy

    Allows the user at the managed workstation to accept or reject connections across NAT or Proxy. This is applicable for connections initiated through the Directory-based authentication only.

     

    Display Remote Management Agent Icon to Users

    Displays the Remote Management Agent icon in the taskbar of the Windows* 98 and Windows 2000/XP managed workstation on which the Remote Management Agent is running.

    Control

    Enable Remote Control

    Allows the remote operator to remote control the managed workstation.

     

    Prompt User for Permission to Remote Control

    Allows the user at the managed workstation to either accept or reject the Remote Control session initiated by the remote operator.

     

    Give User Audible Signal when Remote Controlled

    Generates an audible signal on the managed workstation every time the remote operator remote controls the managed workstation. You can modify the time interval as to when the audible signal should be generated.

     

    Give User Visible Signal when Remote Controlled

    Displays a visible signal with the name of the remote operator on the managed workstation every time the remote operator remote controls the managed workstation. You can modify the time interval as to when the name should be displayed.

     

    Allow Blanking User's Screen

    Allows the remote operator to blank the screen of the managed workstation during a remote control session and also lock the mouse and the keyboard controls.

     

    Allow Locking User's Keyboard Mouse

    Allows the remote operator to lock the mouse and keyboard controls of the managed workstation during a remote control session.

    View

    Enable Remote View

    Allows the remote operator to remote view the desktop of the managed workstation.

     

    Prompt User for Permission to Remote View

    Allows the user at the managed workstation to either accept or reject the Remote View session initiated by the remote operator.

     

    Give User Audible Signal when Remote Viewed

    Enables the management console to send an audible signal to the managed workstation every time the remote operator remote views the managed workstation.

     

    Give User Visible Signal when Remote Viewed

    Enables the management console to send a visible signal to the managed workstation every time the remote operator remote views the managed workstation.

    File Transfer

    Enable File Transfer

    Allows the remote operator to transfer files between the management console and the managed workstation.

     

    Prompt User for Permission to Transfer Files

    Allows the user at the managed workstation to either accept or reject the File Transfer session initiated by the remote operator.

    Remote Execute

    Enable Remote Execute

    Allows the remote operator to execute applications or files on the managed workstation.

     

    Prompt User for Permission to Remote Execute

    Allows the user at the managed workstation to either accept or reject the Remote Execute session initiated by the remote operator.

    The administrator can change the default settings on any page of the Remote Management policy. If you change the Remote Management Agent icon setting, you must restart the Remote Management Agent for the changes to take effect. The new settings are applied for all subsequent Remote Management sessions.

    NOTE:  To traverse the options of the Remote Operations button, press Ctrl+Up or Ctrl+Down.

  6. Click the Associations tab > Add.

  7. Browse to and select the container object where the workstations are registered > click OK.

  8. Click Apply > Close.